The LogClarity® Enterprise Solution is designed to automate log management tasks for compliance requirements, increase security through powerful incident management capabilities and provide in-depth visibility into commercial database activity.
LogClarity® combines all-inclusive logging, monitoring and intelligent analysis all in one powerful solution. All of the LogClarity® Components were developed from the ground up with the needs of IT professionals in mind.LogClarity® Enterprise Console
The LogClarity® Console
LogClarity® consists of two primary dashboards; The Enterprise View and the Domain View. Both Dashboards provide drill down capabilities based on custom and pre-defined hot links. This view is designed for the Enterprise Security or Network Security teams to be able to drill down into a variety of critical activities.
Customers can manage all elements of log management, database activity monitoring and incident management from one place. The console consists of multiple views and dashboards; the incident management framework; Built-in Alerts and Custom Settings; Enterprise Reporting and Sound Forensics.
The Enterprise Dashboard provides a global view of:
- Network Activity
- Database Activity
- USB Drive Activity
- Privilege User Activity
- UNIX and Mainframe Activity
- Active Directory Activity
The Domain Dashboard provides a different view and scope of key targeted areas for Active Directory. The purpose of this view is to enable domain administrators and security teams a special view to bring focus on key elements strictly for the domain management and unique security challenges of Active Directory.
Alert Central
The Alert Central facility was developed to give customers a solid set of built-in alerts in which to build a solid incident management and response framework. Over 375 alert options that are pre-canned can be customized or enabled as is. Each alert provided contains full description of alert, authority reference link (I.e. Microsoft Technet), and recommended handling process.
Key Areas of focus are:
- Security Policy Enforcement
- Security Incident Detection
- Violations of Compliance Mandates
- Data Security for Databases and Servers
- Network & Domain Operational Issues
- Database & Server Uptime Problems
This capability is extremely useful in putting in place a proactive approach to risk mitigation, operational uptime improvement and security policy enforcement.
Incident Management Center
The Incident Management Framework contained within the LogClarity® Console is designed to help key stakeholders expediently identify and respond to security operational and compliance related incidents.
Features
- Increase or Reduce Incident Threat level Status
- Reassignment of Incident Handler
- Incident Ticket Assignment
- Storage of all open/closed Incidents
- Reporting of Incident Management History Details
The Incident Management capabilities enable organizations to review historical incident handling, every response carried out and the outcomes. Customers can derive future improvements to their security programs and policies and can discuss remediation efforts to reduce damage and incidents in the future.
Compliance and On-Demand Reporting
Compliance reporting is one of the major time-consuming efforts that organizations face when trying to not only meet compliance mandates but to maintain them.
The LogClarity® Reporting engine provides;
- On-Demand Reports
- Email Reports
- Custom Log Search Reports
The LogClarity® Difference is clearly represented within every LogClarity® Report. Unlike other logging solutions, LogClarity® is designed to analyze filter correlate and translate event logs into business intelligence. The LogClarity® Reporting engine simply pulls its data from the clear, complete and uncompromised data stored within the LogClarity® back-end database.
Forensics and Data Mining
Forensics and Data Mining capabilities aren't usually in the crosshairs of IT professionals or executives when selecting logging solutions. However, when a serious incident occurs and they do occur, Forensics can be a significant roadblock for remediation or it can be the savior.
LogClarity® Quick Search allows for simple Object based search which finds all related logs to a particular user or computer or group. This feature is simple to use yet very powerful
LogClarity® Advanced Search on the other hand allows customers to select from a variety of categories and options to allow forensics experts a more agile approach then the basic event ID search or Regular Expression. Those methods are about as agile as an elephant on a tightrope. Powerful options like Object type, Attribute, and parameter can be selected from simple drop down menus rather than basic, text editor type searches.
LogClarity's Forensics is extremely simple, yet powerful. The Advanced capabilities make data mining agile and effortless.
LogClarity® Component Modules
- LogClarity® Enterprise Console
- LogClarity® Infrastructure Management Component
- LogClarity® Database Activity Monitoring Component
- LogClarity® Network Monitoring Component
- LogClarity® Data Security Component
Test Drive the LogClarity® Enterprise Solution to
make the best decision for your log management and Database Activity Monitoring needs.
